[ClusterLabs] FYI to anyone backporting the recent security fixes

Ken Gaillot kgaillot at redhat.com
Fri May 24 11:34:04 EDT 2019


In case anyone is planning to backport only the recent security fixes
to an older pacemaker version, here is a list of all commits that are
relevant.

2.0 branch:

32ded3e0172e0fae89cf70965e1c0406c1db883b High: libservices: fix use-after-free wrt. alert handling
912f5d9ce983339e939e4cc55f27791f8c9baa18 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (0/4)
1148f45da977113dff588cdd1cfebb7a47760b32 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (1/4)
970736b1c7ad5c78cc5295a4231e546104d55893 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (2/4)
052e6045eea77685aabeed12c519c7c9eb9b5287 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (3/4)
d324e407c0e2695f405974d567d79eb91d0ee69a High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (4/4)
3ad7b2509d78f95b5dfc8fffc4d9a91be1da5113 Med: controld: fix possible NULL pointer dereference
bccf845261c6e69fc4e6bdb8cf4e630a4a4ec7a8 Log: libcrmcluster: improve CPG membership messages
7dda20dac25f07eae959ca25cc974ef2fa6daf02 Fix: libcrmcommon: avoid use-of-NULL when checking whether process is active
d9b0269d59a00329feb19b6e65b10a233a3dd414 Low: libcrmcommon: return proper code if testing pid is denied


1.1 branch:

f91a961112ec9796181b42aa52f9c36dfa3c6a99 High: libservices: fix use-after-free wrt. alert handling
ab44422fa955c2dff1ac1822521e7ad335d4aab7 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (0/4)
6888aaf3ad365ef772f8189c9958f58b85ec62d4 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (1/4)
904c53ea311fd6fae945a55202b0a7ccf3783465 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (2/4)
07a82c5c8f9d60989ea88c5a3cc316ee290ea784 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (3/4)
4d6f6e01b309cda7b3f8fe791247566d247d8028 High: pacemakerd vs. IPC/procfs confused deputy authenticity issue (4/4)
9dc38d81cb6e1967c368faed78de1927cabf06b3 Med: controld: fix possible NULL pointer dereference
83811e2115f5516a7faec2e653b1be3d58b35a79 Log: libcrmcluster: improve CPG membership messages
d0c12d98e01bc6228fc254456927d79a46554448 Fix: libcrmcommon: avoid use-of-NULL when checking whether process is active
c0e1cf579f57922cbe872d23edf144dd2206156b Low: libcrmcommon: return proper code if testing pid is denied
-- 
Ken Gaillot <kgaillot at redhat.com>



More information about the Users mailing list